-
To replace some additional existing infrastructure with Boulder Observer, we'd want to add three more things to probe:
1. The validity and remaining lifetime of the CRL at a given URL
2. The remai…
-
### Problem Description
### Overview:
When using the OpenSC minidriver with a JPKI card, pkcs15-tool --list-keys correctly displays both key containers. However, when running certutil -scinfo,…
-
I have now spent quite some time reading through RFCs and reflecting over the various types of Arrowhead-related X.509 certificates. You can read my initial proposal for X.509 profiles for Arrowhead […
-
Highlight code that sets the CheckCertificateRevocationList property to false:
https://msdn.microsoft.com/en-us/library/system.net.servicepointmanager.checkcertificaterevocationlist(v=vs.110).aspx
-
http://www.iis.net/learn/manage/configuring-security/how-to-set-up-ssl-on-iis#SSL
https://msdn.microsoft.com/en-us/library/ms186362.aspx
I couldn't find it in the cookbook or docs, but I was able to …
-
I build couple SharePoint 2019 environments on windows server 2016 and notice one thing is common in all of them. Each environment is complaining about CRL.
Event viewer : `A certificate validation …
-
When a SCEP profile is changed in Intune, any existing certificate is revoked before being reissued. However the revocation is merely noted in a list in Intune that has to be downloaded and processed …
-
I created a test key pair, and sent the bare revocation certificate to hockeypuck with the submit key option of the web interface. It caused an immediate panic of the server process.
```
hockeypuc…
-
This bug is an umbrella/tracking bug, acting as a one-stop-shop to see progress on the multiple sub-tasks necessary to achieve this large-scale project.
OCSP carries with it two large disadvantages…
-
It's a requirement that CRLs for Intermediate CAs have reason codes. Table 1.2.2 in the TLS BRs says "2020‐09‐30 7.2 and 7.3 All OCSP and CRL responses for Subordinate CA Certificates MUST include a m…